Stock spammers gain while followers lose

The fraudsters behind stock-touting e-mail campaigns typically make nearly 6 percent returns on the pumped-up stock if they follow a simple strategy, while traders that buy the touted stock lose more than 5 percent in two days, stated a research paper published over the weekend.

2007-01-23

Google and Yahoo look to secure Internet freedom

Google, Microsoft, Yahoo and Vodafone Group, a mobile phone company based in the United Kingdom, have participated quietly in talks for more than a year with advocacy groups. This week, they went public, setting a goal of "principles guiding company behavior when faced with laws, regulations and policies that interfere with the achievement of human rights."

2007-01-23

US wins spam and malware crown

The US has been named and shamed as the nation that hosted more malicious code and relayed more spam than any other during 2006. According to the Sophos Security Threat Report 2007, the US internet industry remains plagued by criminal activity despite continued efforts to clamp down on cyber-crime.

2007-01-23

eEye launches 0-day tracker site

Security firm eEye has created what's described as the industry's first site designed solely to track zero-day vulnerabilities, flaws where exploits are available prior to the release of security patches.

2006-12-21

Check Point Connectra security bypass

Before a client connects to the internal network a test is being done on the client to check if there is any security hazard on his computer. If a hazard is detected the user is prompted with the hazard details and asked to run the test again before getting the ability to login to the network. A bypass to this test has been detected by Roni Bachar and Nir Goldshlager. A user with a security hazard or a Trojan can bypass the end point security tests and login to the network with a security hazard on his computer. The bypass is being done by sending a "good" report to the /sre/params.php page after sending the report a set cookie will be send from the server to the client. This cookie can be used to bypass the endpoint security findings.

NOD32 Anti-Virus File Parsing Vulnerabilities

NOD32 antivirus is prone to multiple remote vulnerabilities because the application fails to properly parse specially crafted files. An attacker can exploit one of issues to execute arbitrary code with SYSTEM-level privileges. Successful exploits will result in the complete compromise of affected computers. The other vulnerability will trigger denial-of-service conditions. Versions prior to 1.1743 are vulnerable to these issues.

McAfee VirusScan For Linux Insecure DT_RPATH

McAfee VirusScan for Linux is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the process invoking VirusScan. McAfee VirusScan 4510e and prior versions are vulnerable to this issue.

ProFTPD is prone to a local stack-based BoF

Attackers may exploit this issue to corrupt memory and execute arbitrary code in the context of the server application, resulting in a complete compromise of affected computers.

Shellcode Check List

• World domination